mod_security drop action

Discussion in 'Apache Migration/Compatibility' started by munduk75, Jul 1, 2009.

  1. munduk75

    munduk75 Member


    I'm having a problem with mod_security "drop" action, it doesn't want to work.
    For instance, I use :

    SecFilterSelective REQUEST_URI "/hacker"

    Then set Action to "log,drop" (either in vhost or server tab), restart LiteSpeed and all I get in 404 page not found :(

    Can LiteSpeed v4.0.4 handle the drop action ?

  2. grniyce

    grniyce Well-Known Member

  3. munduk75

    munduk75 Member

    Thanks, but I still get the same problem.

    - if the file doesn't exist, it returns a 404. Well, OK, I understood that, in that case, not rule will be parsed (too bad !).
    - if the file exists, depending on its mime-type, it will be displayed/ran or downloaded :eek:
  4. mistwang

    mistwang LiteSpeed Staff

    drop action is not supported yet, use deny instead.
    Will add that.

Share This Page